7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
Vulnerability in rsyslog package affects SmartCloud Provisioning 2.1 for IBM Provided Software Virtual Appliance (CVE-2014-3634).
CVEID: CVE-2014-3634**
DESCRIPTION:** RSyslog and sysklogd are vulnerable to a denial of service. By sending a specially-crafted message, a remote attacker could exploit this vulnerability to cause the service to crash.
CVSS Base Score: 5
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/96794> for more information
CVSS Environmental Score*: Undefined
CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:N/A:P)
SmartCloud Provisioning 2.1 for IBM Provided Software Virtual Appliance
The recommended solution is download SmartCloud Provisioning 2.1 Fix Pack 5 for IBM Provided Software Virtual Appliance Interim Fix 3 (2.1.0-TIV-ISCP-FP0005-SVA_IFIX03) from Fix Central and apply it as soon as practical.
None known